Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-6852

Support for transient nameid or proxy users

    XMLWordPrintable

Details

    • NEW
    • NEW

    Description

      Many SAML SSO use case requires Many-to-one mapping or transient users (via transient nameid) that only need one local "proxy user" to be mapped and ideally the saml attributes to be populated as session attributes to be used by the application.

      This use case is widely use to avoid complication of maintaining local account for each federated users.
      Local account of course is maintain at application side and the role of the Federation SSO server (keycloak) is to just facilitate the SAML brokering.

      Attachments

        Issue Links

          Activity

            People

              hmlnarik@redhat.com Hynek Mlnařík
              longman_jira Long Man (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: